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© In a fault diagnostic system an operator interface 
(25, 30) simultaneously displays an operations hier- 
archy (60) and a components hierarchy (50) in two 
separate windows (200, 210). The display system is 
used with a model-based diagnostic system (10, 95) 
that monitors operational parameters of an industrial 
process (20). The diagnostic system (10, 95) iden- 
tifies possible failure source components in the in- 
dustrial process (20) an the display system (25, 30) 
uses these diagnostics to display the most interest- 
ing portions of the operations hierarchy and the 
components hierarchy. The most interesting node, to 
be displayed with its subtree, is defined as the node 
at the lowest level of the hierarchy that is both a fault 
source and that has more children than other fault 
sources at that level. 


FIG. l 



t i 



BNSOOCIO:<EP 0482523 A2> 


Rank Xerox (UK) Business Services 

1-/2. 17/2.CM 


1 


EP 0 482 523 A2 


2 


Background of the Invention 


The present invention relates in general to real- 
time fault diagnostic systems, and more particularly 
to a multiple aspect operator interface for display- 
ing fault diagnostic results in a real-time diagnostic 
system. 

In complex industrial processes, a computer- 
ized fault diagnostic system is frequently used to 
monitor alarms and detect possible sources of fail- 
ure in the industrial process. Real-time fault di- 
agnostic systems observe the operation of pro- 
cesses, detect the appearance and propagation of 
faults, and continuously update the list of possible 
fault causes to support the on-line decision making 
which determines whether to intervene in the pro- 
cess being monitored. 

The ultimate purpose of the diagnostic system 
is to minimize the cost of operation of the industrial 
process being monitored by finding all possible 
sources of detected process anomalies as early as 
possible, and by predicting the prospective impact 
of the faults on the operation of related process 
components. These techniques are particularly ap- 
plicable in chemical and power engineering be- 
cause of the extreme expense of down-time and 
the adverse economic effect which can be caused 
by a degradation of product quality. 

Thus, a diagnostic system is frequently used to 
monitor extremely complex industrial operations, 
such as in a chemical or power plant. A typical 
industrial operation can have thousands of compo- 
nents performing hundreds of operations at any 
given time. Many of these operations are inter- 
dependent, and constantly interact with each other. 
The failure of any one component can potentially 
affect adversely the performance of other oper- 
ations that do not directly use the failed compo- 
nent. Therefore, a single component fault can ef- 
fectively propagate to many other operations, and 
can set off many different alarms. 

When a failure occurs in one or more compo- 
nents, the plant operator is often inundated with 
data describing many more alarms than actual fail- 
ures. It is essential that the operator be able to 
determine what component or components are re- 
sponsible for a plant failure and what operations 
have been affected at the different levels of plant 
operation. The identity of fault source components 
and affected operations allows repair of the faulty 
component, shutdown of an operation, or initiation 
of fault recovery procedures to take place. 

Thus, if an operator of a diagnostic system 
knew which components were responsible for plant 
failures, effective repair or alternatively, switching 
to backup components, could be begun quickly. 
And if the operator knew which operations were 
affected by the faulty component, future failures 


might be avoided by inactivating a particular opera- 
tion. It would also be advantageous to provide 
continuing updates of the results of a fault diagnos- 
tic system analysis as refinements of the diagnosis 

5 occur; because by obtaining even partial results, 
further failures can be avoided and failure recovery 
actions can be taken. 

Therefore, an object of the present invention is 
an operator interface that allows a quick and cor- 

io rect response to a rapidly evolving fault scenario in 
a diagnostic system. 

Another object of the present invention is an 
operator interface that simultaneously displays the 
status of components as well as the status of 

75 operations in a diagnostic system. 

Another object of the present invention is an 
operator interface that provides both component 
and operation information in a diagnostic system at 
different levels of abstraction. 

20 A further object of the present invention is an 

operator interface that presents information in a 
format that can be understood quickly and easily 
by the operator of a diagnostic system. 

25 Summary of the Invention 


The operator interface of the present invention 
is used with a model-based diagnostic system that 
monitors operational parameters of an industrial 

30 process. The diagnostic system is based on a 
hierarchical fault model that uses a directed graph 
to represent fault nodes and fault propagation paths 
between plant components and plant operations. 
The model-based diagnostic system has both on- 

35 line and off-line alarm sources and identifies possi- 
ble failure source components in the industrial pro- 
cess. 

The hierarchy is made up of a group of nodes, 
with the root node being the node from which all 

40 other nodes are derived. The hierarchy is defined 
as a set of hierarchy levels, each level having a 
group of nodes, A node is assigned to a particular 
hierarchy level based on the distance of the node 
from the root node. The root node is in the highest 

45 hierarchy level and the leaf nodes are in the lower 
hierarchy levels. 

The operator interface displays the operational 
hierarchy of the modeled industrial process in one 
window and displays the component hierarchy of 

so the process in another window. The results of the 
failure diagnostic system is used to determine 
which area of the operational hierarchy and the 
component hierarchy it would be most useful to 
display to an operator. 

55 The operator interface displays two separate 

two-dimensional windows simultaneously, one for 
the operations hierarchy, and one for the compo- 
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nents hierarchy. Each window is scrollable in two 
dimensions, and each window can be moved in- 
dependently of the other window. 

In the preferred embodiment, each node in a 
hierarchy is preferably displayed in a small block, 
with the name of the node displayed as text within 
the block. The background color of each block can 
be changed dynamically to represent different 
states of particular components or operations- 
Lines showing propagation paths are drawn from 
hierarchical parent to its immediate child(ren). 

The display of the entire model hierarchy usu- 
ally requires an area that is larger than that of the 
display screen. Therefore, only a portion of the 
hierarchical model can be shown in one display at 
a time. The operator can observe particular parts of 
the hierarchy by scrolling or by using an automatic 
portion display option. 

The automatic portion display option displays 
the sub-hierarchy which is rooted at the highest 
"interesting" node in the hierarchy. In normal oper- 
ations, the highest interesting node is the root node 
of the entire graph, that is, the node from which all 
other nodes are derived. However, if a fault has 
occurred, the most interesting node is one that has 
been diagnosed as a fault source. 

The automatic operator interface selects the 
most interesting node in any hierarchy and dis- 
plays a selected portion of the hierarchy using the 
initial most interesting node as the root node. Each 
hierarchy level is examined to determine which 
node is the most interesting node at that level. In 
the preferred embodiment, the most interesting 
node at a particular level is, of all the nodes that 
are a fault source, the one with the most children. 
The method continues examining each hierarchy 
level, displaying, if a more interesting node is 
found, the current most interesting node and its 
sub-tree of nodes, including nodes at lower hierar- 
chy levels, if a more interesting node becomes 
available at a lower level, that node becomes the 
most interesting node. 

The operator interface then displays the most 
interesting node and as much of its sub-tree as can 
be displayed. If there are no faults in the system, 
the operator interface displays the hierarchical 
model using the root node, or the highest node in 
the model, as the most interesting node and the 
operator is free to scroll through the hierarchical 
display. 

Brief Description of the Drawings 

Other objects, features, and advantages of the 
invention will become apparent from the descrip- 
tion of a particular embodiment, taken in combina- 
tion with the drawings, in which: 


Figure 1 is a representation of the application 
environment of the system; 
Figure 2 is an example of a component hierar- 
chical model and an operations hierarchical 
s model; 

Figure 3 is a block diagram of the integration of 
the operator interface with the diagnostics sys- 
tem; 

Figure 4 is an example of a operator display 
70 screen using the present invention; 

Figure 5 is a flow chart of the algorithm to find 
the root node from which to display the hierar- 
chy; and 

Figure 6 is a flow chart of the subroutine to find 
/5 the most interesting node in a hierarchy level. 

Detailed Description of a Preferred Embodiment 

The operator interface of the present invention 
20 is a graphics-oriented color-coded multiple aspect 
operator interface that graphically (using text also) 
displays diagnostic results in a fault diagnostic 
system. A computerized fault diagnostic system is 
frequently used to monitor alarms and detect pos- 
25 sible sources of failure in a complex industrial 
process. Real-time fault diagnostic systems ob- 
serve the operation of processes, detect the ap- 
pearance and propagation of faults, and continu- 
ously update the list of possible fault causes in 
30 order to support on-line decision making for decid- 
ing whether to intervene in the process being mon- 
itored. 

The operator interface displays the operational 
hierarchy of the modeled industrial process in one 

35 window and displays the component hierarchy of 
the process in another window. The results of the 
failure diagnostic system are used to determine 
which area of the operational hierarchy and the 
component hierarchy it would be most useful to 

40 display to an operator. 

As the fault diagnostic system makes refine- 
ments to the diagnosis, the operator interface dis- 
plays can, using an automatic display option, 
change according to the latest diagnosis. The 

45 graphical operator interface of the present invention 
allows a quick and correct response to a rapidly 
evolving fault scenario in a diagnostic system. 

The operator interface simultaneously displays 
the status of components as well as the status of 

so operations being monitored by the diagnostic sys- 
tem and provides both component and operation 
information at different levels of abstraction. The 
information is presented in a format that can be 
understood quickly and easily by the operator. 

55 The operator interface simultaneously displays 

the physical component and the operations aspects 
of a process, represented as hierarchical graphs, in 
separate, two-dimensional graphic windows. The 
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complete model of the components and of the 
operations usually do not fit on one screen. The 
operator interface therefore can show only a por- 
tion, or a "window", of the operation or component 
hierarchical graph model at one time. The graphic 
windows can be scrolled in two dimensions by the 
operator, to look at and review the complete model. 

Both the operations and the components being 
monitored appear to the operator in a graphed 
hierarchical model. The models consist of compo- 
nents and sub-components or of operations and 
sub-operations. Individual elements of each hierar- 
chy are represented, in the illustrated embodiment, 
in a small block containing the name of the individ- 
ual element. In the illustrated embodiment, the 
background color of each block can be changed 
dynamically to reflect the status of the individual 
component or operation. 

Referring now to Fig. 1, the operator interface 
of the present invention is used with a model- 
based diagnostic system 10 that monitors an in- 
dustrial process 20. The model-based diagnostic 
system has both on-line and off-line alarm sources 
and identifies possible failure source components 
in the industrial process in response to alarm sig- 
nals. The potential failure source components are 
displayed on a display 25 of an operator interface 
30. 

In a preferred embodiment of the present in- 
vention, the diagnostic system is based on a hier- 
archical fault model which uses a directed graph to 
represent fault nodes and fault propagation paths 
between plant components and plant operations. 
The plant components and the plant operations are 
represented in a hierarchy which is derived from 
the structural models of plant components and 
operations respectively. 

The hierarchy is made up of a group of nodes, 
with the root node being the node from which all 
other nodes are derived. The hierarchy is defined 
as a set of hierarchy levels, each level having a 
group of nodes. A node is assigned to a particular 
hierarchy level based on the distance of the node 
from the root node. The root node is in the highest 
hierarchy level and the leaf nodes are in the lower 
hierarchy levels. 

Each hierarchical model consists of nodes 
(denoted by the circular shapes in the figure) con- 
nected by fault propagation paths (the connecting 
lines in the figure). The fault propagation paths 
represent how a fault, which occurs at one node, 
can propagate through the industrial process. Each 
fault propagation path is characterized by the up- 
per and lower limit of the propagation time, and by 
the propagation probability. 

Referring to Fig. 2, an example of a component 
hierarchical model 50 and an operations hierarchi- 
cal model 60 is shown. The plant component hier- 
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archy is a hierarchical decomposition of the com- 
ponents present within the plant. The plant oper- 
ations hierarchy is a hierarchical decomposition of 
the operations being performed within the plant. 

5 Referring to Fig. 2, the root node "PLANT" 51 

of the plant component hierarchy 50 is the plant 
itself, and is at the highest hierarchical level. The 
root node "PLANT" has five children at a second 
hierarchical level, "CONTROLLER" 52, "FUEL AS- 

io SEMBLY" 53, "REACTION ASSEMBLY" 54, 
"STORAGE ASSEMBLY" 55, and "PUMP" 56. The 
remaining nodes are at the lowest, or third hierar- 
chical level. These nodes are children of the nodes 
at the second hierarchical level. For example, 

75 nodes "PIPE 3" 57 and "VALVE" 58 are the chil- 
dren of the "FUEL ASSEMBLY" 53 node. A failure 
occuring at "PIPE 3" 57 would propagate up to 
"FUEL ASSEMBLY" 53, and finally to "PLANT" 51. 
When a failure is discovered at a particular compo- 

20 nent, the hierarchical model can be used to deter- 
mine both what components at a higher level can 
be affected by the failure and also what compo- 
nents at a lower level could have failed and caused 
this particular component to fail. 

25 Similarly, in the operations hierarchical model 

60, the root node "PROCESS" is the industrial 
process. The root node has three children, 
"HEATING" node 62 , "TEMP CONTROL" node 
63, and "OUTPUT" node 64. The "HEATING" 

30 node 62 has two children, "BURNING" node 65, 
and "FUEL SUPPLY" node 66. When a failure is 
discovered at a particular operation, the hierarchi- 
cal model can be used to determine both what 
operations at a higher level can be affected by the 

35 failure and also what operations at a lower level 
could have failed and caused this particular opera- 
tion to fail. Referring to Figure 3, the system in- 
tegrates the operator interface with the diagnostic 
system. The model database 100 contains both the 

40 component model hierarchy 120 and the operations 
model hierarchy 110. A layout generator 130 gen- 
erates a component layout 150 for the component 
hierarchy 120 and stores it for run-time use. The 
layout generator 130 also generates and stores an 

45 operations layout 140 for the operations hierarchy 
110. 

A display manager 160 uses the component 
and operations layouts 140, 150 to display the 
appropriate portion of each hierarchy, based on the 

so inputs received from the diagnostic system. The 
display screen 25 displays two separate two-di- 
mensional windows simultaneously, one window 
210 for the operations hierarchy, and one window 
200 for the components hierarchy. 

55 Each window is scrollable in both dimensions, 

and each window can be moved independently 
relative to the other window. The hierarchical model 
to be displayed usually requires an area that is 
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larger than that available on the display screen. 
Because the maximum size of the window is fixed 
by the size of the display screen, typically, only a 
portion of the model can be shown at a time. The 
operator can observe particular parts of the hierar- 
chical model by manual scrolling or by using the 
automatic portion display option. 

Referring to Fig. 4, an example of an operator 
display screen of the present invention is shown. 
The automatic portion display option displays a 
"sub-hierarchy" which is rooted at the highest 
"interesting" node in the hierarchy. In normal oper- 
ations, the highest interesting node is the root node 
itself. However, if a fault has occurred, the most 
interesting node is one that has been diagnosed as 
a fault source. 

Figure 4 shows an example of an operations 
hierarchy display 250 with root node 255. Each 
node in a hierarchy, for example node 260, is 
displayed in a small block, with the name of the 
node displayed as text within the block. Each hier- 
archy is displayed in a horizontal orientation, from 
left to right. Each parent node is displayed as a 
block in the window that is typically centered with 
respect to its immediate children. For example, the 
parent node 290, labelled "Generation", is centered 
with respect to its child nodes 300 "Exciter", 310 
"Speed Regulator" and 320 "Generator". The verti- 
cal left hand edges of each node in the same level 
of the hierarchy are aligned on the same vertical 
line. 

Lines showing propagation paths are drawn 
from the midpoint of each parent's right hand verti- 
cal corner to the midpoint of the left hand edge of 
each immediate child. The horizontal distance be- 
tween the left-hand vertical edge of any two blocks 
of text need not be constant, and may be changed 
for different applications. 

In the illustrated embodiment, color is used to 
convey analysis information. The color of the text 
strings within the blocks are black. The background 
color of each block is changed dynamically to 
represent different states of particular components 
or operations. In the illustrated embodiment, the 
color codes for blocks on the operation hierarchy 
are: 

Green: Operation is normal. 
Pink: Operation contains ringing alarms. 

Red: Operation is a possible failure 

source. 

Yellow: Off-line alarm information is request- 
ed for this operation. 
The color codes for blocks on the component 
hierarchy are: 

Green: Component is normal 
Red: Component is a possible failure 
source. 


Referring to Figure 5, the automatic portion 
display method selects the highest interesting node 
in a hierarchy and directs the display of selected 
portions of the hierarchy. Initially, the most interest- 

5 ing node is set at 400 to the root node. Then, the 
next hierarchy level is obtained at 410 and is 
examined at 420 to determine if there is a more 
interesting node at this lower hierarchical level. The 
system continues examining each hierarchical level 

10 (tested at 430), and when all levels have been 
examined, displays at 440 the sub-tree with the 
root node being that node determined as being the 
most interesting node. 

Referring to Figure 6, in the illustrated embodi- 

75 ment, the method for determining if a more inter- 
esting node exists examines the nodes at each 
level to find the fault source, if any, with the most 
children. This node is set to be the most interesting 
node at that level. 

20 Referring in particular to the flow chart of Fig- 

ure 6, the system first zeroes, at 500, the param- 
eter MAXCHILDS. It then fetches, at 510, the next 
node in the current hierarchical level and it tests, at 
520, whether that node, designated the current 

25 node, is a fault source. If it is not a fault source, the 
next node is feteched at 510. If it is a fault source, 
the system tests, at 530, whether the number of 
children from that node exceeds the current MAX- 
CHILDS. If it does not, the system returns and 

30 obtains the next node of the hierarchical level. If its 
number of children exceeds the current maximum, 
the maximum is reset, at 540, and the most 
"interesting" node is set, at 550, to be the most 
interesting node. The system checks, at 560, for 

35 additional nodes at this hierarchical level, and if 
there are none returns to the main program. 

Thus, if there is a more interesting node at a 
lower hierarchical level, that node becomes the 
most interesting node; and the system will display 

40 the most interesting node and as much of its 
subtree as can fit in the display. The most interest- 
ing node is initially the root node of the entire 
hierarchy, and is displayed in the center of the far 
left of the graph. When, in the preferred embodi- 

45 ment, a more interesting node is found, the display 
if the most interesting node is shifted to the upper 
left corner of the display. 

While the foregoing invention has been de- 
scribed with reference to a particularly preferred 

so embodiment, it should be understood that various 
modifications and alterations will occur to those 
practiced in the art. Such modifications and alter- 
ations are intended to fall within the scope of the 
appended claims. 

55 
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Claims 

1. A method for interactively displaying results of 
a diagnostic analysis system used for analyz- 
ing operation of a monitored process, the pro- 
cess being modeled by a component hierarchi- 
cal model and a process operations hierarchi- 
cal model, said method comprising the steps 
of 

simultaneously displaying in separate dis- 
play windows of a display at least a portion of 
the hierarchical component model and at least 
a portion of the hierarchical process operation 
model, and 

allowing user independent scrolling in each 
said window independent of each other window 
and in two orthogonal directions. 

2. The method of claim 1 further comprising the 
step of 

automatically determining a base node 
which serves as the root of the hierarchical 
model portion to be displayed in a said win- 
dow, said base node initially being the highest 
level node for each hierarchical model. 

3. The method of claim 2 wherein said automatic 
determining step comprises the steps of 

reading current data signals from the di- 
agnostic system representing the current state 
of alarms at various nodes, 

determining from said data signals which 
node is a most interesting node, and 

displaying, using said most interesting 
node as the base node, a subtree of the hierar- 
chical model in the selected window. 

4. The method of claim 3 wherein said base node 
determining step comprises the steps of 

identifying the number of subnodes depen- 
dent upon a fault source base node, and 

selecting the base node, at a given hierar- 
chical level, as that fault node having the larg- 
est number of nodes emanating therefrom. 

5. The method of claim 4 further comprising the 
step of 

altering said display at each node at which 
a fault or alarm occurs to provide a visual 
indication of said fault or alarm. 

6. The method of claim 5 further comprising the 
step of 

changing a background color of a block 
identifying a node having a fault or alarm con- 
dition for making a visual presentation of the 
fault or alarm condition to a user. 


7. The method of claim 1 further comprising the 
step of 

manually scrolling said display hierarchical 
models in said two directions. 

5 

8. The method of claim 7 further comprising the 
steps of 

displaying each hierarchical model as a 
base node connected to each of its immediate 
10 children, each of said children being connect- 

ed to each of their children, and 

continuing said display so that all levels of 
the hierarchical model can be displayed. 

75 9. The method of claim 8 further comprising the 
step of 

displaying each node of the hierarchical 
model as a rectangular box having associated 
therein a text string, at least identifying the 
20 node. 

10. The method of claim 9 further comprising the 
steps of 

aligning all display boxes belonging to a 
25 same hierarchical level along a first direction, 

and 

centering a parent box in said first direc- 
tion with respect to its related children boxes 
of a next lower hierarchical level. 

30 

11. Apparatus for interactively displaying results of 
a diagnostic analysis system (10, 95) used fro 
analyzing operation of a monitored process 
(20), the process (20) being molded by a com- 

35 ponent hierarchical model (50) and a process 

operations hierarchical model (60) said appara- 
tus comprising 

means (25, 30) for simultaneously display- 
ing in separate display windows (200, 210) of a 

40 display at least a portion of the hierarchical 

component model (50) and at least a portion of 
the hierarchical process operation model (60), 
and 

means (95, 100, 130, 160) for allowing 
45 user independent scrolling in each said window 

(200, 210) independently of each other window 
and in two orthogonal directions. 

12. The apparatus of claim 11 further comprising 
so means for automatically determining a 

base node (255) which serves as the root of 
the hierarchical model portion to be displayed 
in a 

window (200, 210), said base node (255) 
55 initially being the highest level node for each 

hierarchical model. 
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13. The apparatus of claim 12 wherein said auto- 
matic determining means comprises 

means for reading current data signals 
from the diagnostic system (10, 95) represent- 
ing the current state of alarms at various 5 
nodes, 

means for determining from said data sig- 
nals which node is a most interesting node, 
and 

means for displaying, using said most in- 10 
teresting node as the base node, a subtree of 
the hierarchical model in the selected window. 

14. The apparatus of claim 13 wherein said base 
node determining means comprises is 

means for identifying the number of sub- 
nodes dependent upon a fault source base 
node, and 

means for selecting the base node, at a 
given hierarchical level, as that fault node hav- 20 
ing the largest number of nodes emanating 
therefrom. 

15. The apparatus of claim 14 further comprising 

means for altering said display at each 25 
node at which a fault or alarm occurs to pro- 
vide a visual indication of said fault or alarm. 

16. The apparatus of claim 15 further comprising 

means for changing a background color of 30 
a block identifying a node having a fault or 
alarm condition for making a visual presenta- 
tion of the fault or alarm condition to a user. 

17. The apparatus of claim 11 further comprising 35 

means for manually scrolling said display 
hierarchical models in said two directions. 

18. The apparatus of claim 17 further comprising 

means for displaying each hierarchical 40 
structure as a base node connected to each of 
its immediate children, each of said children 
being connected to each of their children, and 

means for continuing the display so that all 
bases of the hierarchical model can be dis- 45 
played. 

19. The apparatus of claim 18 comprising 

means for displaying each node of the 
hierarchical model as a rectangular box having 50 
associated therein, at least a text string iden- 
tifying the node. 


55 
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FIG. 3 
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